#Global Exchange Group is a Spanish multinational company, specialized in currency exchange services for the B2B2C segments.
We are one of the world leaders in the sector. In the face-to-face channel, we have a network of more than 423 offices in 70 international airports in 25 countries on 5 continents.
Visit our website to learn more about us: http://www.globalexchange.com
Position Overview:
The Global Exchange Group is immersed in a strong process of organic and inorganic growth.
In this context, we are interested in hiring an IT Internal Audit, who will be responsible for planning, executing and reporting the IT internal audit reviews.
Experience in IT audit/ Information security and risk management is a must for this position.
This role reports to the Groups ́s Corporate Audit Director, and will be based in our HQ in Madrid (Spain).
Key responsabilities:
* Plan, organize, conduct, and document audits, according to our established audit program and audit schedule.
* Evaluate the design, implementation and effectiveness of established controls to cover existing risks in the areas of logical security, communications, application development, systems operation, business processes and their applications, etc.
* General IT Controls: IT Governance, application development, maintenance and change management, operational continuity, IT operations, vendor management.
* Report all findings to the management team and ensure that corrective action plans are implemented accordingly by performing review of effectiveness of corrective actions.
* Diagnosis of control level, security and protection of assets according to international standards: COBIT, ISO 27001, ISO 22301...
* Execution of compliance audits for General Data Protection Regulation (GDPR) and Artificial Intelligence Regulation.
Skills and requirements:
* Degree in Computer Engineering/similar or Business Administration with specific technological training.
* 3+ years of experience in IT audit / Information security; experience with internal audit methodology and IT risk management, security and governance.
* Professional qualifications: CISA, COBIT, CISSP, CRISC, CISM, CEH, CIA, ISO 27001 lead Auditor, etc are a plus.
* Technical knowledge and experience in Application Security, Network Security, Cloud Security, IT system architecture, etc.
* Experience with different information security and data privacy standards and frameworks such as ISO2700X / 22301, DORA, GDPR etc.
* Familiarity with business processes and the ability to identify and optimize workflows for better efficiency.
* An IT-oriented mindset, capable of navigating and utilizing technology solutions to drive results
Competencies:
* Strategic vision.
* Strong leadership.
* Organizational skills.
* Strong analytical skills.
* Proactive mindset.
* Problem-solving capabilities.
* Communication skills.
Equal Employment Opportunity (EEO) Statement:
Global Exchange Group is an Equal Opportunity/ Affirmative Action Employer. We do not unlawfully discriminate on the basis of race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, or any other protected status.
All applications will be treated confidentially and the protection of personal data provided will be guaranteed in accordance with current data protection regulations (General Data Protection Regulation - G.D.P.R. 2016/679).